Breakout Track 6

Breakout Track 6 Tuesday, September 26: 10:45 a.m. - 11:45 a.m.

Breakout Track 6 – Session 1

Cultural Elevation – Investing in the Human Element to Build IT Resilience

Tuesday, September 25, 2018
10:45 a.m. – 11:45 a.m.

Michelle Israel, Metropolitan Government of Nashville

Michelle Israel

When it comes to building IT resilience, many businesses focus on tangible approaches such as procuring recovery software, upgrading infrastructure, and investing in resources to protect against natural disasters. Although these tactics may prove beneficial, your most valuable resource is the human element.
In this session, we will explore how business continuity professionals can reshape their culture by first investing in the human element. Build your skills by knowing how to ask the right questions and becoming aware of dynamics within a team that might impact performance. You will also have the opportunity to see how a centralized technology platform can enhance team collaboration, promote training and awareness, and provide autonomy while maintaining accountability.

Attendees will leave this session with a customizable plan to establish a progressive culture, bridge knowledge gaps, and increase resilience by motivating the people that drive IT resilience.

About Michelle Israel
Michelle Israel is the ITS Business Continuity Manager for the Metropolitan Government of Nashville in Tennessee.


Breakout Track 6 – Session 2

Improving the Resilience of Outsourced Services
(or Appendix-J for Everyone)

Tuesday, September 25, 2018
10:45 a.m. – 11:45 a.m.

Martin Myers, Myers & Associates

Martin Myers

Most organizations depend on third-party service providers to perform or support critical operations. These organizations should recognize that using such providers does not relieve them of their responsibility to ensure that outsourced activities are conducted in a safe and sound manner. The responsibility for properly overseeing outsourced relationships lies with the board of directors and senior management. An effective third-party management program should provide the framework for management to identify, measure, monitor, and mitigate the risks associated with outsourcing.

Appendix-J to the FFIEC examination handbook provides an excellent guide, not for financial institutions alone, but a well-reasoned guide for all Business Continuity programs. This session will review Appendix-J and use it as the framework for this presentation. How Appendix-J was implemented and how that implementation may be leveraged within your organization.

About Martin Myers
Martin Myers, MS, MBCP, AFBCI, CERT, is an BC/DR/CM Consultant.


Breakout Track 6 – Session 3

IT Incident Command – Responding to and Planning for the Things That go Bump in the Night

Tuesday, September 25, 2018
10:45 a.m. – 11:45 a.m.

Dave Gehrum, Geisinger System Services

Dave Gehrum

This presentation will outline how Geisinger Health System, based in rural Pennsylvania, has developed and continues to refine its IT Incident Command Program. Based on the Hospital Incident Command System (“HICS”), we will discuss the inception and continued evolution of the program, discuss the challenges and opportunities related to the program, and demonstrate how both a planned event and an unplanned incident evolve. In addition, we will discuss: how we’ve obtained and maintain buy-in from all levels of the organization, the ongoing evolution from the mindset of ‘place the blame’ to understanding what went wrong and how to avoid similar issues in the future.

About Dave Gehrum
Dave Gehrum, IT Director, Geisinger System Services.

Breakout Track 6 – Session 4

Cyber Attack Exercise: Engaging Stakeholders Across the Enterprise

Tuesday, September 25, 2018
10:45 a.m. – 11:45 a.m.

Jeffrey H. Fenton, Lockheed Martin Corporation
Nelson Roberts, Lockheed Martin Corporation

Jeffrey Fenton Nelson Roberts

Help your Business Resiliency team enhance their skills and address the evolving threat landscape. At Lockheed Martin Corporation (LMC), structured discussions (mini-drills) throughout the year broaden the range of participants, test a variety of topics, and sharpen preparation for annual enterprise exercises. LMC demonstrated the success of this approach in its November, 2017 enterprise exercise with 32 business and IT stakeholder teams. Building on their experience through mini-drills, the teams effectively engaged with a challenging cyber attack scenario.

About Jeffrey Fenton
Jeffrey H. Fenton is responsible for cyber security policy and standards at Lockheed Martin Corporation.

About Nelson Roberts
Nelson Roberts is a Cyber Architect, focused on data protection techniques; external cloud leverage; alignment of engineering with cyber security Governance, Risk, and Compliance (GRC); and design assurance of key systems.

Breakout Track 6 – Session 5

Case Study: Toyota Motors Faces Off With Maria

Tuesday, September 25, 2018
10:45 a.m. – 11:45 a.m.

Michael Garza, Toyota Motors
Phil Lambert, Ripcord

Michael Garza Phil Lambert

Puerto Rico was first clipped by hurricane Irma on September 5th and considered the fifth most powerful Atlantic hurricane on record (Cat 5). Just fifteen days later, Hurricane Maria, a strong Category 4 storm passed directly over the island before the recovery from Irma had been completed. Most of Puerto Rico was down for the count and faced serious issues as it began recovery efforts from the double whammy.

Another Black Swan? For many, absolutely. For Toyota, come and find out! This presentation will examine how Toyota’s regional business operations and three facilities in Puerto Rico prepared for and recovered from Hurricane Maria. Come and learn how we worked around these problems and how the organization rallied to a response level that was unprecedented even for Toyota. Be a better practitioner and stronger leader by gaining insights and experiences without having to go through such a Black Swan.

About Michael Garza
Michael Garza has worked with Toyota Motors for 21 years.

About Phil Lambert
Phil Lambert is the Founder & Program Architect of Ripcord Solutions.

© Copyright 2018 Disaster Recovery Journal. All Rights Reserved.